Microsoft Windows Knowledge Base Article 969462 update is not installed (WinMs09kb969462Update)

Vuln ID: 50791
Risk Level: High risk vulnerability  High WinMs09kb969462Update
Platforms: Microsoft Excel: 2000 SP3, Microsoft Excel: 2002 SP3, Microsoft Excel Viewer: 2003 SP3, Microsoft Excel Viewer, Microsoft Office Compatibility Pack: 2007 SP1, Microsoft Excel: 2007 SP1, Microsoft Excel: 2003 SP3, Microsoft SharePoint Server: 2007 SP1 x64, Microsoft SharePoint Server: 2007 SP1 x32, Microsoft Office Compatibility Pack: 2007 SP2, Microsoft Excel: 2007 SP2, Microsoft SharePoint Server: 2007 SP2 x32, Microsoft SharePoint Server: 2007 SP2 x64, Microsoft Office: 2004 Mac OS, Microsoft Office: 2008 Mac OS, Microsoft Open XML File Format Converter: Mac OS
Description:

Microsoft Knowledge Base Article 969462 is not installed, which could allow a remote attacker to exploit the following vulnerabilities:

Microsoft Excel could allow a remote attacker to execute arbitrary code on the system, caused by the improper parsing of the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing a malformed record pointer, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.

Microsoft Excel could allow a remote attacker to execute arbitrary code on the system, caused by the improper parsing of the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing a malformed object record, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.

Microsoft Excel could allow a remote attacker to execute arbitrary code on the system, caused by an array indexing error when parsing of the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing a malformed object record, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.

Microsoft Excel is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when parsing the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing an overly long string copy, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

Microsoft Excel could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruption error related to field sanitization when parsing the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing a malformed record object, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.

Microsoft Excel could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow when parsing the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing a malformed object record, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.

Microsoft Excel could allow a remote attacker to execute arbitrary code on the system, caused by the improper parsing of the Excel spreadsheet file format. By persuading a victim to open a specially-crafted Excel file containing a malformed record pointer, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.
Remedy:

Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS09-021. See References.
False Positives:
False Negatives:
Required Permission: Windows login
Additional Information:

References:

Microsoft Security Bulletin MS09-021
Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
http://www.microsoft.com/technet/security/bulletin/ms09-021.mspx

IBM Internet Security Systems X-Force Database
Microsoft Excel pointer code execution
http://xforce.iss.net/xforce/xfdb/50784

IBM Internet Security Systems X-Force Database
Microsoft Excel object record code execution
http://xforce.iss.net/xforce/xfdb/50785

IBM Internet Security Systems X-Force Database
Microsoft Excel array indexing code execution
http://xforce.iss.net/xforce/xfdb/50786

IBM Internet Security Systems X-Force Database
Microsoft Excel string buffer overflow
http://xforce.iss.net/xforce/xfdb/50787

IBM Internet Security Systems X-Force Database
Microsoft Excel field code execution
http://xforce.iss.net/xforce/xfdb/50788

IBM Internet Security Systems X-Force Database
Microsoft Excel record integer overflow
http://xforce.iss.net/xforce/xfdb/50789

IBM Internet Security Systems X-Force Database
Microsoft Excel record pointer code execution
http://xforce.iss.net/xforce/xfdb/50790

ISS X-Force
Microsoft Windows Knowledge Base Article 969462 update is not installed
http://www.iss.net/security_center/static/50791.php

CVE CVE-2009-0549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0549

CVE CVE-2009-0557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0557

CVE CVE-2009-0558
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0558

CVE CVE-2009-0559
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0559

CVE CVE-2009-0560
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0560

CVE CVE-2009-0561
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0561

CVE CVE-2009-1134
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1134
X-Force Logo
Know Your Risks		 Mitre.org CVE Logo
Common Vulnerabilties & Exposures